Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cad7f6d0 by Moritz Muehlenhoff at 2026-06-18T08:43:43+02:00
mark CVE-2026-11850 as a non issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4274,12 +4274,10 @@ CVE-2026-11956 (A vulnerability was determined in TwiN
gatus 5.36.0. Impacted is
CVE-2026-11945 (PostgreSQL Anonymizer contains a vulnerability that allows a
user to g ...)
NOT-FOR-US: PostgreSQL Anonymizer
CVE-2026-11850 (An integer underflow vulnerability was found in MIT krb5 in
the berval ...)
- - krb5 <unfixed> (bug #1139821)
- [trixie] - krb5 <no-dsa> (Minor issue)
- [bookworm] - krb5 <postponed> (Minor issue)
- [bullseye] - krb5 <postponed> (Minor issue)
+ - krb5 <unfixed> (bug #1139821; unimportant)
NOTE: https://krbdev.mit.edu/rt/Ticket/Display.html?id=9206
NOTE:
https://github.com/krb5/krb5/commit/2a5fd83d4436583f2ddc0e193269a4d800ee45c4
+ NOTE: No security impact, doesn't cross any security boundary, see
#1139821
CVE-2026-11839 (Unrestricted upload of file with dangerous type vulnerability
in Ba\u0 ...)
NOT-FOR-US: Rotaban
CVE-2026-11816 (Keras versions prior to 3.14.0 are vulnerable to a path
traversal issu ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cad7f6d005902e6207886d8f797f99a18c8abaf4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cad7f6d005902e6207886d8f797f99a18c8abaf4
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits